From 3d7a75b5e74a22766398e65a23d833e3442163d2 Mon Sep 17 00:00:00 2001
From: glitsj16 <glitsj16@users.noreply.github.com>
Date: Wed, 27 May 2020 18:23:44 +0000
Subject: harden mpg123.profile (#3438)

* harden mpg123.profile

* drop nodvd from mpg123.profile
---
 etc/profile-m-z/mpg123.profile | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

(limited to 'etc/profile-m-z/mpg123.profile')

diff --git a/etc/profile-m-z/mpg123.profile b/etc/profile-m-z/mpg123.profile
index 6e18aa401..b1ab81c1e 100644
--- a/etc/profile-m-z/mpg123.profile
+++ b/etc/profile-m-z/mpg123.profile
@@ -1,13 +1,13 @@
 # Firejail profile for mpg123
 # Description: MPEG audio player/decoder
 # This file is overwritten after every install/update
+quiet
 # Persistent local customizations
 include mpg123.local
 # Persistent global definitions
 include globals.local
 
 noblacklist ${MUSIC}
-noblacklist ${VIDEOS}
 
 include disable-common.inc
 include disable-devel.inc
@@ -23,19 +23,23 @@ include whitelist-var-common.inc
 apparmor
 caps.drop all
 netfilter
+no3d
 nogroups
 nonewprivs
 noroot
+notv
 nou2f
+novideo
 protocol unix,inet,inet6,netlink
 seccomp
 shell none
+tracelog
 
 #private-bin mpg123*
 private-dev
 private-tmp
 
-memory-deny-write-execute
-
 dbus-user none
 dbus-system none
+
+memory-deny-write-execute
-- 
cgit v1.2.3-70-g09d2